mirrors
/
mastodon-glitch
mirror of https://github.com/glitch-soc/mastodon
3
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Allow JSON-LD documents with multiple profiles

glitch-soc/security/18856371be8603b7f720afaf8500b656c4667573
Claire 2024-02-09 18:24:26 +01:00
parent 325425780d
commit af6122f58e
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
app/helpers/jsonld_helper.rb
View File

@ -183,7 +183,11 @@ module JsonLdHelper
# When the mime type is `application/ld+json`, we need to check the profile,
# but `http.rb` does not parse it for us.
response.mime_type == 'application/ld+json' && response.headers[HTTP::Headers::CONTENT_TYPE]&.split(';')&.map(&:strip)&.include?('profile="https://www.w3.org/ns/activitystreams"')
return false unless response.mime_type == 'application/ld+json'
response.headers[HTTP::Headers::CONTENT_TYPE]&.split(';')&.map(&:strip)&.any? do |str|
str.start_with?('profile="') && str[9...-1].split.include?('https://www.w3.org/ns/activitystreams')
end
end
def body_to_json(body, compare_id: nil)